revil attacks Stratford University

Incident Date:

April 22, 2022

World map

Overview

Title

revil attacks Stratford University

Victim

Stratford University

Attacker

Revil

Location

Pimmit, USA

Virginia, USA

First Reported

April 22, 2022

Stratford University Suffers Ransomware Attack, Affecting Thousands of Individuals

Stratford University, a private institution based in Alexandria, Virginia, with campuses in Virginia, Maryland, and India, has been the target of a ransomware attack that compromised sensitive student and employee data. The breach occurred on August 27, 2022, and affected the personal information of approximately 78,692 individuals, including their first and last names, phone numbers, addresses, email addresses, dates of birth, student identification numbers, passport numbers, and Social Security numbers.

The attack was significant enough for Stratford University to file a breach notification with the Maine Attorney General's Office on January 26, 2023. The university began sending out data breach notification letters to all individuals whose information was compromised as a result of the incident.

Stratford University, founded in 1976, had a student body of around 1,240 undergraduates and 137 post-graduates, with a workforce of over 641 employees, and generated approximately $75 million in annual revenue. The institution was known for offering online, classroom, and blended online/classroom programs before it closed operations at the end of the Fall 2022 semester due to losing its accreditation.

The ransomware attack on Stratford University highlights the vulnerability of educational institutions to cyber threats. Despite the significant impact of the breach, the university did not disclose the specific ransomware group responsible for the attack.

In response to the breach, Stratford University advised affected individuals to monitor their bank statements and keep an eye out for suspicious credit statements. The university also offered instructions on how to protect themselves, but did not warn potential victims about the risk of social engineering attacks, such as phishing.

The incident serves as a reminder for educational institutions to prioritize cybersecurity measures to protect sensitive data and mitigate the risks associated with ransomware attacks.

Sources

Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.